dependabot[bot]
db4dd01fe5
chore(deps): bump actions/checkout from 4.1.5 to 4.1.6 ( #10296 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.5 to 4.1.6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](44c2b7a8a4...a5ac7e51b4
2024-05-23 10:33:32 +00:00
dependabot[bot]
26fad0d3f0
chore(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 ( #10218 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.3.1 to 2.3.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](0864cf1902...dc50aa9510
2024-05-23 08:47:37 +00:00
Anushka Mittal
68304e4b19
chore: make contrinue-on-fail flag available outside package ( #10293 )
...
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>
2024-05-23 08:16:33 +00:00
dependabot[bot]
fbdd15fbc9
chore(deps): bump fluxcd/flux2 from 2.2.3 to 2.3.0 ( #10232 )
...
Bumps [fluxcd/flux2](https://github.com/fluxcd/flux2 ) from 2.2.3 to 2.3.0.
- [Release notes](https://github.com/fluxcd/flux2/releases )
- [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml )
- [Commits](534684601e...896e0fa46d
2024-05-23 07:30:14 +00:00
dependabot[bot]
ecfdc7df53
chore(deps): bump sigs.k8s.io/release-utils from 0.8.1 to 0.8.2 ( #10212 )
...
Bumps [sigs.k8s.io/release-utils](https://github.com/kubernetes-sigs/release-utils ) from 0.8.1 to 0.8.2.
- [Release notes](https://github.com/kubernetes-sigs/release-utils/releases )
- [Commits](https://github.com/kubernetes-sigs/release-utils/compare/v0.8.1...v0.8.2 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/release-utils
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-23 06:15:05 +00:00
dependabot[bot]
7adef4a957
chore(deps): bump golangci/golangci-lint-action from 6.0.0 to 6.0.1 ( #10200 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](23faadfdeb...a4f60bb28d
2024-05-22 10:07:43 +00:00
Khaled Emara
ed4eb9666a
fix(anchor): skip anchors don't have priority ( #10206 )
...
* fix(anchor): give priority to skip anchors
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* test(anchor): conditional anchor with a failing sibling
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* test(anchor): conditional anchor mixed with other results
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(anchor): successful anchor with a skip anchor
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
---------
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-05-22 09:04:14 +00:00
Mariam Fahmy
57b2c5fe4f
fix: add a copy method to the policy context ( #10236 )
...
* fix: add a copy method to the policy context
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: add a CLI test
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: remove mutate changes
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-21 15:29:09 +00:00
shuting
e58d7120c6
fix: sort webhookconfig.operations ( #10274 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-05-21 13:22:08 +00:00
shuting
84e0ced314
fix: webhook config set ( #10262 )
...
* tests: add unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: merge operations map correctly
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-05-21 08:33:59 +00:00
Jim Bugwadia
6d48a185d1
Fix cli load policies from fs ( #10270 )
...
* skip invalid policy files
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix file-system policy loader
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* propagate policy schema error
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2024-05-21 15:17:49 +08:00
Nicolas Lamirault
6bd52a28fb
feat(helm): GrafanaDashboard configuration ( #10254 )
...
* feat(helm): GrafanaDashboard configuration
Signed-off-by: Nicolas Lamirault <nicolas.lamirault@gmail.com>
* feat(helm): documentation
Signed-off-by: Nicolas Lamirault <nicolas.lamirault@gmail.com>
---------
Signed-off-by: Nicolas Lamirault <nicolas.lamirault@gmail.com>
2024-05-20 23:38:47 +08:00
Mariam Fahmy
59ff771ae8
fix: process the matched resources only for mutate existing policies ( #10164 )
...
* fix: process the matched resources only for mutate existing policies
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix lint issue
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: add unit tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-05-20 12:40:53 +00:00
Mariam Fahmy
5534ac335a
fix flake test in VAPs ( #10263 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-20 11:03:47 +00:00
shuting
fb9c66f455
feat(perf): add new linter prealloc to enforce slice declarations best practice ( #10250 )
...
* feat(perf): add new linter prealloc to enforce slice declarations best practice
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(linter): prealloac slices
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-05-20 14:46:35 +05:30
Jim Bugwadia
46e5d818b1
truncate event messages to 1024 chars ( #10255 )
2024-05-20 08:16:30 +00:00
dependabot[bot]
d580ae0dee
chore(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0 ( #10235 )
...
Bumps [github.com/fatih/color](https://github.com/fatih/color ) from 1.16.0 to 1.17.0.
- [Release notes](https://github.com/fatih/color/releases )
- [Commits](https://github.com/fatih/color/compare/v1.16.0...v1.17.0 )
---
updated-dependencies:
- dependency-name: github.com/fatih/color
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-20 07:38:55 +00:00
Vishal Choudhary
3af0e461f0
fix: deepcopy patched resource in foreach mutate ( #10252 )
...
* fix: deepcopy patched resource to avoid indirect reversal of its elements
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: copy elements while reversing
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: copy resources inside foreach
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* add test
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add test
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2024-05-20 14:45:21 +08:00
dependabot[bot]
1302004bc2
chore(deps): bump goreleaser/goreleaser-action from 5.0.0 to 5.1.0 ( #10226 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 5.0.0 to 5.1.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](7ec5c2b0c6...5742e2a039
2024-05-17 06:53:11 +00:00
shuting
37af1f83a7
fix: isolate reports creation context ( #10245 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-05-16 15:58:38 +03:00
Ambrish R
be5d006827
fix: updated copyrights year from 2023 to 2024 ( #10243 )
...
Signed-off-by: AmbrishRamachandiran <ambrish.r@infosys.com>
2024-05-16 10:10:35 +00:00
Anushka Mittal
63ab92417c
[Bug] [CLI] Level parameter of the apply and test commands does not work ( #10216 )
...
* added verbosity level
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
* added else statement to handle the error
Signed-off-by: GitHub <noreply@github.com>
* fix: verbosity in cli
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
---------
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: GitHub <noreply@github.com>
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>
2024-05-15 13:57:17 +00:00
dependabot[bot]
5fcf83084c
chore(deps): bump aquasecurity/trivy-action from 0.19.0 to 0.20.0 ( #10201 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.19.0 to 0.20.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](d710430a67...b2933f565d
2024-05-15 10:53:32 +00:00
Shubham Singh
25cb47ede1
adding myself in the contributors list ( #10149 )
...
Signed-off-by: Shubham Singh <shubhammahar1306@gmail.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-11 11:33:01 +00:00
Mariam Fahmy
900bf48ecf
fix: skip generating VAPs in case namespace's name contains wildcards ( #10205 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-10 14:19:10 +00:00
Mariam Fahmy
6fec52436a
fix: generate VAPs that match all resources when kinds is set to * ( #10208 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-09 06:46:10 +00:00
Mariam Fahmy
60e347bedb
feat: support generating VAPs in case of matching resources in specific namespaces ( #9981 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-05-08 11:09:47 +00:00
dependabot[bot]
84f70ef944
chore(deps): bump golang.org/x/crypto from 0.22.0 to 0.23.0 ( #10189 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.22.0 to 0.23.0.
- [Commits](https://github.com/golang/crypto/compare/v0.22.0...v0.23.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-08 07:47:57 +00:00
Mariam Fahmy
3fa6a8d34e
fix: add resourceNames field in the generated VAPs ( #10187 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-07 12:19:12 +00:00
dependabot[bot]
4bbb57af18
chore(deps): bump actions/checkout from 4.1.4 to 4.1.5 ( #10191 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.4 to 4.1.5.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](0ad4b8fada...44c2b7a8a4
2024-05-07 10:36:00 +00:00
Charles-Edouard Brétéché
ecce1632f2
feat: make cli results count public ( #10177 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-05-07 08:58:09 +00:00
dependabot[bot]
f29f7ca454
chore(deps): bump golangci/golangci-lint-action from 5.3.0 to 6.0.0 ( #10192 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 5.3.0 to 6.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](38e1018663...23faadfdeb
2024-05-07 08:14:07 +00:00
dependabot[bot]
8fc7461422
chore(deps): bump github.com/cyphar/filepath-securejoin ( #10174 )
...
Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin ) from 0.2.4 to 0.2.5.
- [Release notes](https://github.com/cyphar/filepath-securejoin/releases )
- [Commits](https://github.com/cyphar/filepath-securejoin/compare/v0.2.4...v0.2.5 )
---
updated-dependencies:
- dependency-name: github.com/cyphar/filepath-securejoin
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-07 07:37:32 +00:00
Victor Boissiere
70eb981539
feat: add cronjob ttl support ( #10083 )
...
* feat: add cronjob ttl support
Signed-off-by: Victor Boissiere <victor.boissiere@qonto.com>
* fix: add artifacthub changes
Signed-off-by: Victor Boissiere <victor.boissiere@qonto.com>
* fix: run make codegen-helm-all
Signed-off-by: Victor Boissiere <victor.boissiere@qonto.com>
---------
Signed-off-by: Victor Boissiere <victor.boissiere@qonto.com>
2024-05-07 07:06:52 +00:00
dependabot[bot]
5d362d3691
chore(deps): bump golang.org/x/text from 0.14.0 to 0.15.0 ( #10175 )
...
Bumps [golang.org/x/text](https://github.com/golang/text ) from 0.14.0 to 0.15.0.
- [Release notes](https://github.com/golang/text/releases )
- [Commits](https://github.com/golang/text/compare/v0.14.0...v0.15.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/text
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-06 15:02:34 +00:00
Mariam Fahmy
f291407ca9
fix: skip generating VAPs for policies that match multiple resources with a namespace/object selector ( #10181 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-06 21:52:22 +08:00
Khaled Emara
21602a1e1f
fix(polex): multiple polexes with conditions ( #9994 )
...
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-06 10:28:39 +00:00
Mariam Fahmy
8805620574
fix: add CONNECT operation in the webhook config for pod/exec subresource ( #9855 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-06 09:51:46 +00:00
Lanting Chiang
f91bf6529d
allow kyverno apply command to continue on failure ( #10036 )
...
* allow kyverno apply to continue on failure
Signed-off-by: lanting.chiang <lanting.chiang@robinhood.com>
* allow kyverno apply to continue on failure
Signed-off-by: lanting.chiang <lanting.chiang@robinhood.com>
---------
Signed-off-by: lanting.chiang <lanting.chiang@robinhood.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-05-06 09:00:54 +00:00
Mariam Fahmy
cd33b84a62
fix: add pods/ephemeralcontainers to the generated VAPs ( #10162 )
...
* fix: add pods/ephemeralcontainers to the generated VAPs
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: remove an extra space
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-06 08:29:55 +00:00
dependabot[bot]
d32b95ad45
chore(deps): bump golangci/golangci-lint-action from 5.1.0 to 5.3.0 ( #10172 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 5.1.0 to 5.3.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](9d1e0624a7...38e1018663
2024-05-06 07:33:02 +00:00
dependabot[bot]
feeac7cfbf
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions ( #10173 )
...
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions ) from 3.0.4 to 3.0.5.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases )
- [Commits](19ebcb0bab...40e45e738b
2024-05-06 15:04:05 +08:00
dependabot[bot]
f654e6e6a4
chore(deps): bump kyverno/action-install-chainsaw from 0.1.9 to 0.2.0 ( #10167 )
...
Bumps [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw ) from 0.1.9 to 0.2.0.
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases )
- [Commits](995cddaee7...748066cc15
2024-05-03 09:06:01 +02:00
dependabot[bot]
aaf9504ece
chore(deps): bump ubuntu from 562456a to 3f85b7c in /.devcontainer ( #10158 )
...
Bumps ubuntu from `562456a` to `3f85b7c`.
---
updated-dependencies:
- dependency-name: ubuntu
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-02 12:47:56 +00:00
dependabot[bot]
ab1d26473b
chore(deps): bump codecov/codecov-action from 4.3.0 to 4.3.1 ( #10160 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.3.0 to 4.3.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](84508663e9...5ecb98a3c6
2024-05-02 08:56:43 +00:00
treydock
87ef6f6f9b
Ensure CA certificate ConfigMaps get defined ( #10156 )
...
Fixes #10141
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
2024-05-02 07:33:13 +00:00
dependabot[bot]
cbf121fd36
chore(deps): bump github.com/onsi/gomega from 1.33.0 to 1.33.1 ( #10135 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.33.0 to 1.33.1.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.33.0...v1.33.1 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-01 13:34:46 +00:00
dependabot[bot]
aa3331faae
chore(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp ( #10136 )
...
Bumps [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib ) from 0.50.0 to 0.51.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.50.0...zpages/v0.51.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-01 09:50:55 +00:00
dependabot[bot]
6990180ea7
chore(deps): bump golangci/golangci-lint-action from 5.0.0 to 5.1.0 ( #10137 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 5.0.0 to 5.1.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](82d40c283a...9d1e0624a7
2024-05-01 08:50:39 +00:00
Vishal Choudhary
c403a498a3
fix: add error check in jmespath type conversion in context variables ( #10152 )
...
* fix: add error check in jmespath type conversion in context variables
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix(lint): new line in tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: properly update path variable
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: remove log statemet
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-05-01 04:30:34 +00:00
